[每日信息流] 2026-01-13

# 每日安全资讯（2026-01-13）

- paper - Last paper
  - [ ] [DEVCORE 的 Synology BeeStation RCE 与一种新型 SQLite 注入 RCE 技术（CVE-2024-50629~50631）](https://paper.seebug.org/3448/)
- 奇安信攻防社区
  - [ ] [基于“灰盒”蒸馏的大语言模型攻击研究](https://forum.butian.net/share/4717)
- SecWiki News
  - [ ] [SecWiki News 2026-01-12 Review](http://www.sec-wiki.com/?2026-01-12)
- Private Feed for M09Ic
  - [ ] [bolucat released 202601121941 at bolucat/Archive](https://github.com/bolucat/Archive/releases/tag/202601121941)
  - [ ] [anthropics released v2.1.5 at anthropics/claude-code](https://github.com/anthropics/claude-code/releases/tag/v2.1.5)
  - [ ] [usestrix released v0.6.0 at usestrix/strix](https://github.com/usestrix/strix/releases/tag/v0.6.0)
  - [ ] [Ridter starred yhy0/ChYing](https://github.com/yhy0/ChYing)
  - [ ] [4ra1n starred yhy0/ChYing](https://github.com/yhy0/ChYing)
  - [ ] [mgeeky starred kleiton0x00/Proxy-DLL-Loads](https://github.com/kleiton0x00/Proxy-DLL-Loads)
  - [ ] [WAY29 starred obra/superpowers](https://github.com/obra/superpowers)
  - [ ] [gh0stkey starred jenish-sojitra/JSAnalyzer](https://github.com/jenish-sojitra/JSAnalyzer)
  - [ ] [CHYbeta starred router-for-me/Cli-Proxy-API-Management-Center](https://github.com/router-for-me/Cli-Proxy-API-Management-Center)
  - [ ] [lz520520 starred teest114514/chatlog_alpha](https://github.com/teest114514/chatlog_alpha)
  - [ ] [niudaii starred lintsinghua/DeepAudit](https://github.com/lintsinghua/DeepAudit)
  - [ ] [rabbitmask starred geekoe/workflow3](https://github.com/geekoe/workflow3)
  - [ ] [gh0stkey starred snarktank/ralph](https://github.com/snarktank/ralph)
  - [ ] [gh0stkey contributed to WinMin/OpenReCopilot](https://github.com/WinMin/OpenReCopilot/pull/1)
  - [ ] [gh0stkey forked HACK-THE-WORLD/OpenReCopilot from WinMin/OpenReCopilot](https://github.com/HACK-THE-WORLD/OpenReCopilot)
  - [ ] [WAY29 starred 9001/copyparty](https://github.com/9001/copyparty)
  - [ ] [gh0stkey starred Lil-House/Pyarmor-Static-Unpack-1shot](https://github.com/Lil-House/Pyarmor-Static-Unpack-1shot)
- LevelBlue Blog
  - [ ] [LevelBlue Named Official Cybersecurity Advisor of the PGA of America](https://levelblue.com/blogs/levelblue-blog/levelblue-named-official-cybersecurity-advisor-of-the-pga-of-america/)
- Recent Commits to cve:main
  - [ ] [Update Mon Jan 12 11:20:04 UTC 2026](https://github.com/trickest/cve/commit/4cbfc385891f13fa8c4502394e4c85e348d0ba09)
- Tenable Blog
  - [ ] [Tenable Is a Gartner® Peer Insights™ Customers’ Choice for Cloud-Native Application Protection Platforms](https://www.tenable.com/blog/tenable-is-a-gartner-peer-insights-customers-choice-for-cloud-native-application-protection)
- CXSECURITY Database RSS Feed - CXSecurity.com
  - [ ] [CarRentalMS 2.0 Cross Site Request Forgery](https://cxsecurity.com/issue/WLB-2026010007)
  - [ ] [LibreChat MCP Stdio Remote Command Execution](https://cxsecurity.com/issue/WLB-2026010006)
  - [ ] [WordPress Quiz Maker 6.7.0.56 SQL Injection](https://cxsecurity.com/issue/WLB-2026010005)
- 嘶吼 RoarTalk – 网络安全行业综合服务平台,4hou.com
  - [ ] [Ni8mare高危漏洞来袭 黑客可远程劫持n8n服务器](https://www.4hou.com/posts/om3A)
  - [ ] [新型网络犯罪工具ErrTraffic实现ClickFix攻击自动化 伪造网站故障诱骗用户中招](https://www.4hou.com/posts/YZ1O)
  - [ ] [从拟人互动到具身行动，具身智能机器人在特种作业与安防领域的应用深化与安全挑战](https://www.4hou.com/posts/mk1n)
  - [ ] [实践解析：梆梆安全助力某省农商行构建移动业务反诈体系——基于实时风险感知与协同防御](https://www.4hou.com/posts/kgYK)
  - [ ] [喜报 | 以专注铸专长，梆梆安全获评“2025北京软件核心竞争力企业”](https://www.4hou.com/posts/jBXB)
  - [ ] [新法施行！邮件安全这三条不改，可罚千万！](https://www.4hou.com/posts/vwnL)
  - [ ] [CACTER 2025年度安全答卷已生成，速查收](https://www.4hou.com/posts/gyRD)
- 安全客-有思想的安全新媒体
  - [ ] [XML陷阱：Struts 2高危漏洞CVE-2025-68493致数据泄露](https://www.anquanke.com/post/id/314266)
  - [ ] [“粉河豚”攻击行动：银行恶意软件Astaroth转战WhatsApp发起新型攻击](https://www.anquanke.com/post/id/314279)
  - [ ] [CVE-2026-22184(CVSS 评分 9.3)zlib高危漏洞引发全球性缓冲区溢出风险](https://www.anquanke.com/post/id/314276)
  - [ ] [锈水木马崛起：泥水坑组织弃用PowerShell，改用高隐蔽性Rust植入程序](https://www.anquanke.com/post/id/314289)
  - [ ] [执法打击力度加大，2025年勒索软件攻击仍激增47%](https://www.anquanke.com/post/id/314260)
  - [ ] [泥水坑组织借助鱼叉式钓鱼，在中东多行业部署“锈水”远程访问木马](https://www.anquanke.com/post/id/314257)
  - [ ] [数据投毒：2026年新兴人工智能安全防护策略](https://www.anquanke.com/post/id/314275)
  - [ ] [印度以应对网络威胁为由要求审查智能手机源代码](https://www.anquanke.com/post/id/314272)
  - [ ] [NRF 2026：谷歌云推出零售业专属AI创新成果，赋能零售数字化转型](https://www.anquanke.com/post/id/314269)
  - [ ] [高危漏洞CVE-2025-68637：Apache Uniffle存在严重缺陷，致集群面临窃听风险](https://www.anquanke.com/post/id/314283)
- Doonsec's feed
  - [ ] [注意：境外未知组织正发起污染Ai大模型数据集计划](https://mp.weixin.qq.com/s/mvDjZSlxTDVySD1n2vxnmw)
  - [ ] [【转载】格陵兰岛是如何陷落的](https://mp.weixin.qq.com/s/75FAKLqrVk1eoqRMRcfBvQ)
  - [ ] [【培训】第16期开源情报能力培训班1月北京开班](https://mp.weixin.qq.com/s/ffjN-r5aAwAInFdxU5qz9w)
  - [ ] [聊聊 “vibe writing” ，关于AI痕迹过重的文章就得琢磨一下是否有看下去的必要](https://mp.weixin.qq.com/s/fu2yVQoQyEQJHT7d5PJkOQ)
  - [ ] [CrowdStrike宣布7.5亿美元现金收购身份安全初创公司SGNL](https://mp.weixin.qq.com/s/8ovQFxBddfwMNDvqV2qNYw)
  - [ ] [易忽视的敏感信息泄露](https://mp.weixin.qq.com/s/b9fPdO_Bbpzdpc67uzkwKg)
  - [ ] [承影（ChYing）：三年磨一剑，一个安全人的开源梦](https://mp.weixin.qq.com/s/twPg3dAei4WPGOw_HrmuEg)
  - [ ] [【工具分享】最强免费开源取证工具箱合集](https://mp.weixin.qq.com/s/lLmpXfG7-lH6IVraqlY2eg)
  - [ ] [辛辛苦苦卖命，给公司裁员省了150多万，替公司裁了将近200人之后我自己被裁了。干完活就把我裁了，就是现实版 “狡兔死走狗烹”。](https://mp.weixin.qq.com/s/tJ0XJbvYf97xGWg4MQF93A)
  - [ ] [继续唠股票](https://mp.weixin.qq.com/s/QzovwctZE6WoT2Md85xcUw)
  - [ ] [死了么APP实则是用户智商检测仪。](https://mp.weixin.qq.com/s/cXk5vwAZ2GoBnfSWA73vkw)
  - [ ] [网络安全企业疯狂裁人的终极目标是什么？](https://mp.weixin.qq.com/s/5Rs3B00WhnQS_8gYAVwcIA)
  - [ ] [获取目标Telegram的真实IP](https://mp.weixin.qq.com/s/kwdQCbRGCxsGdwGEvnsZQg)
  - [ ] [Ralph Loop 的前世今生](https://mp.weixin.qq.com/s/KfMYIdt_7XPbv2BZSDqaxg)
  - [ ] [Deepseek越狱? 利用MoE “物理缺陷”越狱](https://mp.weixin.qq.com/s/Zl5GS72tvylWaOdjNRtDRg)
  - [ ] [CVE-2025-68428_PoC](https://mp.weixin.qq.com/s/-KHeodmYpguuA34OstX4kw)
  - [ ] [擦除与重生：Windows 系统下删除文件如何实现 LPE（持久化文件执行）](https://mp.weixin.qq.com/s/xXJWd1ICsS-sSH6elVKjlw)
  - [ ] [HexStrike AI自动渗透测试平台搭建](https://mp.weixin.qq.com/s/4iDN2Y1V0YFmTqo-jcErjg)
  - [ ] [每日课程更新](https://mp.weixin.qq.com/s/EFXjzYkwcDuaFCRSRgRxzw)
  - [ ] [[LLMSC@FSE] 第二届大模型供应链研讨会征稿通知](https://mp.weixin.qq.com/s/8oT--h6J8WDonSiz0CYsXQ)
  - [ ] [准备组织AI安全线下技术沙龙](https://mp.weixin.qq.com/s/5_aXcymmbJPyOQwQW9tG1g)
  - [ ] [不会逆向也能快速破解加解密爽挣两千大洋](https://mp.weixin.qq.com/s/XKHrnfxyxKT4x9hfd_4c0w)
  - [ ] [宣传一下](https://mp.weixin.qq.com/s/zjxvswD3ejdbu93YSf3DfQ)
  - [ ] [死了么APP创始人吕同学河南人、新华电脑学院毕业](https://mp.weixin.qq.com/s/vDtadEqeIUzYEhz_Pe0lEg)
  - [ ] [命令与控制（C2）的演进：从中心化到链上（On-Chain）](https://mp.weixin.qq.com/s/zon5sH5_uERDq6TRSvJm_w)
  - [ ] [2026年1月13日A股市场预测](https://mp.weixin.qq.com/s/WGCRUDXOYyMpo8oce41kug)
  - [ ] [2025年度收官 | 知其安邀您共启成长图鉴！](https://mp.weixin.qq.com/s/RAZk-kvp61pw7xc-i17l_g)
  - [ ] [【大话工控安全】工业控制系统行业知识：电力行业通信安全标准IEC62351（GB/T 25320）-PART11](https://mp.weixin.qq.com/s/-tlK6qGNuTaCUtWwkmzNkA)
  - [ ] [人在海外，如何使用国内的网络环境？一个国内服务器即可搭建一个回国线路，在别国也能使用国内网络和APP](https://mp.weixin.qq.com/s/y8ybEgNyY1kZ19QQWMHqUw)
  - [ ] [今日热点（国际）](https://mp.weixin.qq.com/s/SDcVQDAa0zOcf5arQGm1FQ)
  - [ ] [今日热点（国内）](https://mp.weixin.qq.com/s/mVsiXad4MtQDAPonAAoPog)
  - [ ] [ValleyRAT_S2攻击组织以部署隐形恶意软件并提取财务信息](https://mp.weixin.qq.com/s/KXHpC7mJzNQ3_N77FZt15g)
  - [ ] [一、使用ENSP模拟器搭建小型局域网](https://mp.weixin.qq.com/s/DjGxoBOBHUaU_V53fMY9jA)
  - [ ] [二、使用HCL模拟器搭建小型局域网](https://mp.weixin.qq.com/s/CLJPGF8UdT6p_v6xdi-9PA)
  - [ ] [三、如何使用PPPOE拨号上网？](https://mp.weixin.qq.com/s/EnZw94uRrL04bF6VknxJJg)
  - [ ] [OSCP/OSEP一对一私教直通车：协议保障，直通高级渗透测试专家](https://mp.weixin.qq.com/s/Hjk_EIKCUvSeFUvgu5uFiA)
  - [ ] [死了么APP创始人压力巨大：各路大佬纷纷加我、彻夜长谈](https://mp.weixin.qq.com/s/Bq_dZGUKTpupqxomAy23VA)
  - [ ] [27岁天才腾讯科学家首秀？内容没营养被群嘲？](https://mp.weixin.qq.com/s/O7RT3DZjMyKE6yzs4mEsgA)
  - [ ] [【AI安全】Deepseek越狱? 利用MoE 架构的“物理缺陷”实施越狱](https://mp.weixin.qq.com/s/Fhtbvfu-bJ0y9Be_Xjlylw)
  - [ ] [CTF自动化AWD工具 - AWD-H1M-PRO](https://mp.weixin.qq.com/s/T3jjANWejlAIbSuIEauqng)
  - [ ] [如何将 AI 真正融入现代 SOC 工作流](https://mp.weixin.qq.com/s/W-so6vYkUl7214-KFnCs4A)
  - [ ] [今日分享|GBT 45279-2025 IPv4IPv6网络安全防护技术规范 第1部分：IP承载网](https://mp.weixin.qq.com/s/-fBlfO0anVHx-PrLTWYh1g)
  - [ ] [BreachForums黑客攻击导致论坛数据库泄露，32.4万个账户信息暴露。](https://mp.weixin.qq.com/s/ij3yLJR5ekeHltz7svr_cw)
  - [ ] [CVE-2026-22184 (CVSS 9.3)：zlib 严重漏洞导致全局缓冲区溢出](https://mp.weixin.qq.com/s/EV0ozNPsX5GBNBYp-TtNEA)
  - [ ] [【接口漏洞第五章第一节】当API“过度热心”：批量赋值漏洞的狩猎笔记](https://mp.weixin.qq.com/s/zJaHUYFOuo0qs_QAHCks_g)
  - [ ] [四川天府银行发布2025数智化转型成果，AI贯穿全流程](https://mp.weixin.qq.com/s/hNxr8824KK4HOXQnkZR7pQ)
  - [ ] [AI快讯：谷歌推“通用商务协议”UCP助力AI购物，蚂蚁国际参与试点](https://mp.weixin.qq.com/s/IoNtrePSJDXUYNETAy16Gw)
  - [ ] [拟选1家！南京银行AI服务管理系统建设项目](https://mp.weixin.qq.com/s/1t0I9WpIAzcKltGoUb9TRg)
  - [ ] [杀猪盘即服务：揭秘\"企鹅\"组织如何将全球诈骗产业化](https://mp.weixin.qq.com/s/dibSAYt1ObaVDMSe8Rsw1w)
  - [ ] [EDRStartupHinder可阻断Windows 11启动时的杀毒软件与EDR服务](https://mp.weixin.qq.com/s/9Odd_8dSuaQIOdumOMQGqQ)
  - [ ] [Instagram确认系统未遭入侵，1700万用户数据泄露实为旧数据翻新](https://mp.weixin.qq.com/s/mQxnEhtL97oMfsXMEGJcpA)
  - [ ] [Everest黑客组织宣称入侵日产汽车公司](https://mp.weixin.qq.com/s/cWWeliuVyCUdo8d7Da2erQ)
  - [ ] [【安全圈】Everest黑客组织宣称入侵日产汽车公司](https://mp.weixin.qq.com/s/5ogX3-PZLrOxs64UhtKygg)
  - [ ] [【安全圈】FBI 警告：朝鲜黑客正将恶意 QR 码用于鱼叉式网络钓鱼](https://mp.weixin.qq.com/s/2p45WLZok63OxABfs2WACg)
  - [ ] [【安全圈】MuddyWater 黑客组织通过鱼叉式钓鱼向中东多部门传播 RustyWater 远程木马](https://mp.weixin.qq.com/s/UjC8UexQjVcZBdO-nai-Aw)
  - [ ] [【安全圈】新型网络犯罪工具 ErrTraffic 实现 ClickFix 攻击自动化 伪造网站故障诱骗用户中招](https://mp.weixin.qq.com/s/fBsaqEzrb0-cnLUlrEVdzw)
  - [ ] [CCRC-DSO 数据安全官证书开课倒计时！](https://mp.weixin.qq.com/s/KvohsQ34PRnkJyd7ulC7nw)
- GuidePoint Security
  - [ ] [The Missing Architecture Behind Most Cyber Risk Programs](https://www.guidepointsecurity.com/blog/missing-architecture-behind-most-cyber-risk-programs/)
- Horizon3.ai
  - [ ] [CVE-2026-22200](https://horizon3.ai/attack-research/vulnerabilities/cve-2026-22200/)
  - [ ] [CVE-2025-52691](https://horizon3.ai/attack-research/vulnerabilities/cve-2025-52691/)
- Cerbero Blog
  - [ ] [Memory Challenge 15: Hijacked](https://blog.cerbero.io/memory-challenge-15-hijacked/)
- VMRay
  - [ ] [Best SOC Automation Tools in 2026: Complete Guide & Expert Comparison](https://www.vmray.com/best-soc-automation-tools-a-complete-guide/)
- Bug Bounty in InfoSec Write-ups on Medium
  - [ ] [From Failure to $32,000: My Bug Bounty Journey](https://infosecwriteups.com/from-failure-to-32-000-my-bug-bounty-journey-84eac429e2d0?source=rss----7b722bfd1b8d--bug_bounty)
  - [ ] [This Endpoint Was “Read-Only” — Until I Read Everything](https://infosecwriteups.com/this-endpoint-was-read-only-until-i-read-everything-c157154bdb99?source=rss----7b722bfd1b8d--bug_bounty)
  - [ ] [The Dark Web Dump Was Old — The Vulnerability Wasn’t ️](https://infosecwriteups.com/the-dark-web-dump-was-old-the-vulnerability-wasnt-%EF%B8%8F-f0c4a2df8171?source=rss----7b722bfd1b8d--bug_bounty)
  - [ ] [How I Discovered Client-Side Desync (HTTP Request Smuggling) in Bug Bounty and Got Rewarded](https://infosecwriteups.com/how-i-discovered-client-side-desync-http-request-smuggling-in-bug-bounty-and-got-rewarded-2e1608a2d43e?source=rss----7b722bfd1b8d--bug_bounty)
  - [ ] [How Playing CTFs Taught Me to Think Like a Hacker](https://infosecwriteups.com/how-playing-ctfs-taught-me-to-think-like-a-hacker-3230225e713b?source=rss----7b722bfd1b8d--bug_bounty)
  - [ ] [How I Became the 4th Top Bug Bounty Researcher on Comolho: My Journey](https://infosecwriteups.com/how-i-became-the-4th-top-bug-bounty-researcher-on-comolho-my-journey-2782166cf83c?source=rss----7b722bfd1b8d--bug_bounty)
  - [ ] [The €400 Bug - VPN/Geo Location Bypass](https://infosecwriteups.com/the-400-bug-vpn-geo-location-bypass-0e9a6d26dd37?source=rss----7b722bfd1b8d--bug_bounty)
- Malwarebytes
  - [ ] [Received an Instagram password reset email? Here’s what you need to know](https://www.malwarebytes.com/blog/news/2026/01/received-an-instagram-password-reset-email-heres-what-you-need-to-know)
  - [ ] [Regulators around the world are scrutinizing Grok over sexual deepfakes](https://www.malwarebytes.com/blog/news/2026/01/regulators-around-the-world-are-scrutinizing-grok-over-sexual-deepfakes)
  - [ ] [Celebrating reviews and recognitions for Malwarebytes in 2025](https://www.malwarebytes.com/blog/product/2026/01/independently-reviewed-repeatedly-approved-celebrating-malwarebytes-2025-awards-and-recognitions)
  - [ ] [A week in security (January 5 &#8211; January 11)](https://www.malwarebytes.com/blog/news/2026/01/a-week-in-security-january-5-january-11)
  - [ ] [Enshittification is ruining everything online (Lock and Code S07E01)](https://www.malwarebytes.com/blog/podcast/2026/01/enshittification-is-ruining-everything-online-lock-and-code-s07e01)
- Intigriti
  - [ ] [Exploiting information disclosure vulnerabilities](https://www.intigriti.com/researchers/blog/hacking-tools/exploiting-information-disclosure-vulnerabilities)
  - [ ] [From the first bug to financial independence: How bug bounty hunting shaped Isira's path](https://www.intigriti.com/researchers/blog/hacker-spotlight/isira)
- 奇客Solidot–传递最新科技情报
  - [ ] [中国公司申请发射逾 20 万颗互联网卫星](https://www.solidot.org/story?sid=83286)
  - [ ] [被罚款后 Cloudflare 威胁退出意大利](https://www.solidot.org/story?sid=83285)
  - [ ] [Windows 资源管理器可能集成 Copilot 侧边栏](https://www.solidot.org/story?sid=83284)
  - [ ] [伊朗断网四天](https://www.solidot.org/story?sid=83283)
  - [ ] [中国测试商用超临界二氧化碳发电机](https://www.solidot.org/story?sid=83282)
  - [ ] [Linus Torvalds 的个人项目使用 AI 辅助编程完成](https://www.solidot.org/story?sid=83281)
  - [ ] [AI 伴侣应用聊黄案本周二审](https://www.solidot.org/story?sid=83280)
  - [ ] [喜马拉雅山冬季降雪量大幅减少](https://www.solidot.org/story?sid=83279)
  - [ ] [因 GitHub 强行推销使用 Copilot Gentoo 考虑迁移出去](https://www.solidot.org/story?sid=83278)
  - [ ] [合法化逆向工程有助于终结平台垃圾化](https://www.solidot.org/story?sid=83277)
  - [ ] [马来西亚印尼屏蔽 Grok](https://www.solidot.org/story?sid=83276)
- 安全分析与研究
  - [ ] [伪装成友道字典银狐最新攻击样本分析](https://mp.weixin.qq.com/s?__biz=MzA4ODEyODA3MQ==&mid=2247495342&idx=1&sn=4be62ce690781d18f7fb13e748f51832)
- 漕河泾小黑屋
  - [ ] [Ralph Loop 的前世今生](https://mp.weixin.qq.com/s?__biz=MzA4NzQwNzY3OQ==&mid=2247484005&idx=1&sn=2dfd591760b81b935b94d9d7ea60d4bf)
- 黑鸟
  - [ ] [注意：境外未知组织正发起污染Ai大模型数据集计划](https://mp.weixin.qq.com/s?__biz=MzAxOTM1MDQ1NA==&mid=2451184794&idx=1&sn=80be4c392fab89b0ba32ff91b63d5b4e)
- 微步在线研究响应中心
  - [ ] [漏洞通告 | Apache Struts S2-069 XXE漏洞](https://mp.weixin.qq.com/s?__biz=Mzg5MTc3ODY4Mw==&mid=2247508073&idx=1&sn=0c8700c435e0541402b4e6734e4a8edb)
- 代码卫士
  - [ ] [趋势科技：速修复这个严重的 Apex Central RCE漏洞](https://mp.weixin.qq.com/s?__biz=MzI2NTg4OTc5Nw==&mid=2247524853&idx=1&sn=c4cd6fbd85899f9051551aad7c427db0)
  - [ ] [Java Apps 严重漏洞可用于劫持会话](https://mp.weixin.qq.com/s?__biz=MzI2NTg4OTc5Nw==&mid=2247524853&idx=2&sn=15cdbed3f4fa83676d37cd78d148ed31)
- 安全内参
  - [ ] [人肉利器？1750万名Instagram用户的姓名电话住址泄露](https://mp.weixin.qq.com/s?__biz=MzI4NDY2MDMwMw==&mid=2247515452&idx=1&sn=26dec5c531efb3191818c2fe4d0eef35)
  - [ ] [美军网络官员分析进攻性网络行动在未来战争冲突中的作用](https://mp.weixin.qq.com/s?__biz=MzI4NDY2MDMwMw==&mid=2247515452&idx=2&sn=eed7878667dcfb20f746f98428b619b2)
- 安全客
  - [ ] [黑吃黑！暗网犯罪论坛遭攻破，32万用户数据全泄露](https://mp.weixin.qq.com/s?__biz=MzA5ODA0NDE2MA==&mid=2649789606&idx=1&sn=7d2c4b5698325f59429e7cdcb01b28b8)
- 青衣十三楼飞花堂
  - [ ] [在Windows中彻底删除指定打印机](https://mp.weixin.qq.com/s?__biz=MzUzMjQyMDE3Ng==&mid=2247488955&idx=1&sn=02fcc8d042f8fbc5dcc805d13206e616)
- 二道情报贩子
  - [ ] [星链:美国的国际战略武器](https://mp.weixin.qq.com/s?__biz=MzU5NTA3MTk5Ng==&mid=2247489967&idx=1&sn=4dcd4c43fbc0968ce424f9ee2b03e8fa)
- 看雪学苑
  - [ ] [Windows SEH 结构化异常溢出分析记录](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458607716&idx=1&sn=16d8d2064f34c3364bd1fe6960b4dcdf)
  - [ ] [游戏工具变后门？InputPlumber高危漏洞曝光，Linux游戏玩家面临劫持风险](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458607716&idx=2&sn=f5d444c58d3d67312e7d95bbd04251ed)
  - [ ] [拒绝赎金陷阱！看雪勒索病毒救援：99%数据恢复+全链路溯源+安全加固](https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458607716&idx=3&sn=8cd6ed52d9433902b9f0c924aa7ada0b)
- 奇安信 CERT
  - [ ] [安全热点周报：D-Link 老旧 DSL 路由器曝新漏洞，正遭黑客活跃攻击](https://mp.weixin.qq.com/s?__biz=MzU5NDgxODU1MQ==&mid=2247504467&idx=1&sn=9464f866ea93eb407f9ae6b83c39be3b)
- CT Stack 安全社区
  - [ ] [Claude Code国内用不了？这款国产AI开发平台直接封神，代码质量还更顶！](https://mp.weixin.qq.com/s?__biz=MzIzOTE1ODczMg==&mid=2247500187&idx=1&sn=09d63148d4901f08e827ee4c14eb9c3a)
- 漏洞推送
  - [ ] [基于JS_HOOK的web流量加解密方案](https://mp.weixin.qq.com/s?__biz=MzU5MTExMjYwMA==&mid=2247485845&idx=1&sn=8df1edd9db05d80cba1ddf9b24f63396)
- 信息安全国家工程研究中心
  - [ ] [个人信息保护政策法规问答（2026年1月）](https://mp.weixin.qq.com/s?__biz=MzU5OTQ0NzY3Ng==&mid=2247502672&idx=1&sn=f5354c1548bb9aeab47704d8556b61e1)
- 中国信息安全
  - [ ] [论坛·算法治理 | 对我国算法治理的实效评估及其启示——基于用户算法应用感知的实证研究](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664257334&idx=1&sn=900002f3b5d4c2e0f46507ee54ecb953)
  - [ ] [专家解读 | 促进人工智能拟人化互动服务有序开展 引领人工智能负责任创新](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664257334&idx=2&sn=c9c7b234bc3e9eef095323f8c82acc1b)
  - [ ] [通知 | 网安标委发布《网络安全标准实践指南——人工智能加速芯片安全功能技术规范》（附全文）](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664257334&idx=3&sn=cd20d9e8501650414a57f39c9f036bc3)
  - [ ] [关注 | 新修改的网络安全法本月起施行——加强安全监管，促进人工智能健康发展对销售或提供未经安全认证的网络关键设备增设罚则](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664257334&idx=4&sn=39ba519a08463c7539e7b239619d05f9)
  - [ ] [评论 | 治理“AI魔改”需明确创新边界](https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664257334&idx=5&sn=c01abc52bcf23d1a57db266c904606be)
- 安全圈
  - [ ] [【安全圈】Everest黑客组织宣称入侵日产汽车公司](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652073682&idx=1&sn=eaafe045322c2887048550f73ea679e9)
  - [ ] [【安全圈】FBI 警告：朝鲜黑客正将恶意 QR 码用于鱼叉式网络钓鱼](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652073682&idx=2&sn=233af4cd5dfedb13752f0410332a3ec7)
  - [ ] [【安全圈】MuddyWater 黑客组织通过鱼叉式钓鱼向中东多部门传播 RustyWater 远程木马](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652073682&idx=3&sn=3cb91003cca511deef1548fe3fc3aaac)
  - [ ] [【安全圈】新型网络犯罪工具 ErrTraffic 实现 ClickFix 攻击自动化 伪造网站故障诱骗用户中招](https://mp.weixin.qq.com/s?__biz=MzIzMzE4NDU1OQ==&mid=2652073682&idx=4&sn=ca3fe952aae03b098b11ef4680bb8868)
- 安全牛
  - [ ] [20亿美元并购暗流：中国商务部正对“Meta拟以20亿美元收购Manus”开展调查](https://mp.weixin.qq.com/s?__biz=MjM5Njc3NjM4MA==&mid=2651140082&idx=1&sn=fa0cfde947eb206bcd5ee08ac4e0ae1e)
  - [ ] [国家网信办就《互联网应用程序个人信息收集使用规定（征求意见稿）》公开征求意见；谷歌：AI智能体自主交易背后的安全挑战与机遇| 牛览](https://mp.weixin.qq.com/s?__biz=MjM5Njc3NjM4MA==&mid=2651140082&idx=2&sn=742d76d6270b8bff645c8d22a55667a4)
- 慢雾科技
  - [ ] [2644 万美元被盗背后：Truebit Protocol 合约漏洞分析](https://mp.weixin.qq.com/s?__biz=MzU4ODQ3NTM2OA==&mid=2247504176&idx=1&sn=f2cf74e966df087cb6ef9f582938e1e2)
- 极客公园
  - [ ] [​拆解夸克密集更新：AI 浏览器「省时间」的关键在哪](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653097089&idx=1&sn=3d6e032e43a6de7d83292603e2ca6444)
  - [ ] [10 后成了「AI 原住民」，他们不用搜索，只会问 AI](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653097051&idx=1&sn=6b6f593596f9e430c3438c41692f84e2)
  - [ ] [「未来不远机器人」完成 2 亿元天使轮融资，真格领投，已进入上百真实家庭试用](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653097051&idx=2&sn=de5aa1cb9bccd87ba5fdcaec79a11fa1)
  - [ ] [苹果放弃 VP 转向 AI 眼镜；死了么 App 团队回应近期热议；雷军：特斯拉确实强，但并非不可战胜 | 极客早知道](https://mp.weixin.qq.com/s?__biz=MTMwNDMwODQ0MQ==&mid=2653097022&idx=1&sn=d8563130988661e743272489d25e85be)
- 嘶吼专业版
  - [ ] [Ni8mare高危漏洞来袭 黑客可远程劫持n8n服务器](https://mp.weixin.qq.com/s?__biz=MzI0MDY1MDU4MQ==&mid=2247586311&idx=1&sn=3125ef178376c2c15a9fbc347e6118cc)
  - [ ] [新型网络犯罪工具ErrTraffic实现ClickFix攻击自动化 伪造网站故障诱骗用户中招](https://mp.weixin.qq.com/s?__biz=MzI0MDY1MDU4MQ==&mid=2247586311&idx=2&sn=09ddc6ef255c7477a24f5c0a34ab5964)
- 数世咨询
  - [ ] [蓄力当下 | 2026安全市场年度大会圆满收官](https://mp.weixin.qq.com/s?__biz=MzkxNzA3MTgyNg==&mid=2247541419&idx=1&sn=4dd5396eb0eb61bf0a66625a9ac38f5a)
- 黑伞安全
  - [ ] [GGML_GGUF 文件格式漏洞深度解读与挖掘思路](https://mp.weixin.qq.com/s?__biz=MzU0MzkzOTYzOQ==&mid=2247489906&idx=1&sn=92b4a74ac266363efbe64a4a935311ff)
- 阿里安全响应中心
  - [ ] [阿里CTF 2026火热来袭！顶尖阵容 × AI融合 × 一血豪礼，等你来战！](https://mp.weixin.qq.com/s?__biz=MzIxMjEwNTc4NA==&mid=2652998532&idx=1&sn=42dbe156875eaf5ae1fb12effa5128a3)
- 威胁猎人Threat Hunter
  - [ ] [【黑产大数据】2025年互联网黑灰产趋势年度总结](https://mp.weixin.qq.com/s?__biz=MzI3NDY3NDUxNg==&mid=2247502296&idx=1&sn=7f6deb49b4feaf471771cfe9c78243dd)
- 复旦白泽战队
  - [ ] [成果分享 | [USENIX Security 2025] 功能变更驱动的远程软件版本识别方法](https://mp.weixin.qq.com/s?__biz=MzU4NzUxOTI0OQ==&mid=2247497328&idx=1&sn=33d3a54b4812e7d5431883f706bf2bfa)
- 字节跳动技术团队
  - [ ] [用第一性原理拆解 Agentic Coding：从理论到实操](https://mp.weixin.qq.com/s?__biz=MzI1MzYzMjE0MQ==&mid=2247517928&idx=1&sn=67a360ce0119faa8d37d81678eb376a5)
  - [ ] [Cue-Pro：让 AI 编程助手真正理解你的“心流”](https://mp.weixin.qq.com/s?__biz=MzI1MzYzMjE0MQ==&mid=2247517928&idx=2&sn=3afe9925ee8cbaec09fde49360a9faec)
- 情报分析师
  - [ ] [七种审讯策略，如何让嫌犯开口说真话](https://mp.weixin.qq.com/s?__biz=MzA3Mjc1MTkwOA==&mid=2650566118&idx=1&sn=2db21b3a03617249bd2cf9de897ca2a8)
  - [ ] [OSINT框架：情报分析的底层逻辑与实战方法论（委内瑞拉案例）](https://mp.weixin.qq.com/s?__biz=MzA3Mjc1MTkwOA==&mid=2650566118&idx=2&sn=9ac585545d150dd06276dcef22275ac1)
- Over Security - Cybersecurity news aggregator
  - [ ] [The Alliance That Never Was: A Critical Analysis of the Ransomware “Alliance” Announced by Stormous](https://www.suspectfile.com/the-alliance-that-never-was-a-critical-analysis-of-the-ransomware-alliance-announced-by-stormous/)
  - [ ] [Hacker gets seven years for breaching Rotterdam and Antwerp ports](https://www.bleepingcomputer.com/news/security/hacker-gets-seven-years-for-breaching-rotterdam-and-antwerp-ports/)
  - [ ] [Facebook login thieves now using browser-in-browser trick](https://www.bleepingcomputer.com/news/security/facebook-login-thieves-now-using-browser-in-browser-trick/)
  - [ ] [Internet monitoring experts say Iran blackout likely to continue](https://therecord.media/internet-monitoring-experts-say-iran-blackouts-continue)
  - [ ] [Assemblea dei Soci 2026](https://www.hacklabg.net/uncategorized/assemblea-dei-soci-2026/)
  - [ ] [Armenia probes alleged sale of 8 million government records on hacker forum](https://therecord.media/armenia-probes-alleged-sale-government-records)
  - [ ] [CISA orders feds to patch Gogs RCE flaw exploited in zero-day attacks](https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-gogs-rce-flaw-exploited-in-zero-day-attacks/)
  - [ ] [Hungary grants asylum to former Polish minister implicated in spyware probe](https://therecord.media/hungary-asylum-spyware-probe-poland)
  - [ ] ['Bad actor' hijacks Apex Legends characters in live matches](https://www.bleepingcomputer.com/news/security/bad-actor-hijacks-apex-legends-characters-in-live-matches/)
  - [ ] [Sweden detains ex-military IT consultant suspected of spying for Russia](https://therecord.media/sweden-detains-it-consultant-russia)
  - [ ] [University of Hawaii Cancer Center hit by ransomware attack](https://www.bleepingcomputer.com/news/security/university-of-hawaii-cancer-center-hit-by-ransomware-attack/)
  - [ ] [Fintech firm Betterment confirms data breach after hackers send fake crypto scam notification to users](https://techcrunch.com/2026/01/12/fintech-firm-betterment-confirms-data-breach-after-hackers-send-fake-crypto-scam-notification-to-users/)
  - [ ] [Target's dev server offline after hackers claim to steal source code](https://www.bleepingcomputer.com/news/security/targets-dev-server-offline-after-hackers-claim-to-steal-source-code/)
  - [ ] [Apple confirms Google Gemini will power Siri, says privacy remains a priority](https://www.bleepingcomputer.com/news/apple/apple-confirms-google-gemini-will-power-siri-says-privacy-remains-a-priority/)
  - [ ] [Ispezioni NIS2: come funzionano e quali responsabilità ricadono sulle organizzazioni](https://www.cybersecurity360.it/legal/ispezioni-nis2-come-funzionano-e-quali-responsabilita-ricadono-sulle-organizzazioni/)
  - [ ] [Hidden Telegram proxy links can reveal your IP address in one click](https://www.bleepingcomputer.com/news/security/hidden-telegram-proxy-links-can-reveal-your-ip-address-in-one-click/)
  - [ ] [Microsoft is retiring the Lens scanner app for iOS, Android](https://www.bleepingcomputer.com/news/microsoft/microsoft-is-retiring-the-lens-scanner-app-for-ios-android/)
  - [ ] [Spanish energy giant Endesa discloses data breach affecting customers](https://www.bleepingcomputer.com/news/security/spanish-energy-giant-endesa-discloses-data-breach-affecting-customers/)
  - [ ] [Cos’è la guerra cognitiva e qual è la posizione della NATO](https://www.cybersecurity360.it/news/guerra-cognitiva-posizione-nato/)
  - [ ] [Raccolta dati e AI, come informare correttamente gli interessati: le raccomandazioni](https://www.cybersecurity360.it/news/raccolta-dati-e-ai-come-informare-correttamente-gli-interessati-le-raccomandazioni/)
  - [ ] [Dutch court sentences hacker who used port systems to smuggle cocaine to 7 years](https://therecord.media/dutch-court-sentences-hacker-who-smuggled-cocaine-ports)
  - [ ] [Prevent cloud data leaks with Microsoft 365 access reviews](https://www.bleepingcomputer.com/news/security/prevent-cloud-data-leaks-with-microsoft-365-access-reviews/)
  - [ ] [Black Axe, arrestati oltre trenta individui legati alla cybergang](https://www.securityinfo.it/2026/01/12/black-axe-arrestati-oltre-trenta-individui-legati-alla-cybergang/)
  - [ ] [UK launches formal investigation into X over ‘nudification’ of children images](https://therecord.media/uk-launches-formal-investigation-x-grok-images)
  - [ ] [Max severity Ni8mare flaw impacts nearly 60,000 n8n instances](https://www.bleepingcomputer.com/news/security/max-severity-ni8mare-flaw-impacts-nearly-60-000-n8n-instances/)
  - [ ] [Il caso OVH, quando il Canada sfida la sovranità digitale UE: i rischi per i nostri dati](https://www.cybersecurity360.it/news/il-caso-ovh-quando-il-canada-sfida-la-sovranita-digitale-ue-i-rischi-per-i-nostri-dati/)
  - [ ] [Gestire il rischio cyber dei sistemi di AI: le prime indicazioni operative del NIST](https://www.cybersecurity360.it/soluzioni-aziendali/gestire-il-rischio-cyber-dei-sistemi-di-ai-le-prime-indicazioni-operative-del-nist/)
  - [ ] [Anthropic brings Claude to healthcare with HIPAA-ready Enterprise tools](https://www.bleepingcomputer.com/news/artificial-intelligence/anthropic-brings-claude-to-healthcare-with-hipaa-ready-enterprise-tools/)
  - [ ] [CERT-AGID 3-9 gennaio: phishing e malware aprono il 2026](https://www.securityinfo.it/2026/01/12/cert-agid-3-9-gennaio-phishing-e-malware-aprono-il-2026/)
- 安全419
  - [ ] [AI系统面临九大网络威胁：从数据投毒到模型窃取](https://mp.weixin.qq.com/s?__biz=MzUyMDQ4OTkyMg==&mid=2247552048&idx=1&sn=6bb40c245540dd8a272770a3fa1b448a)
- Arturo Di Corinto
  - [ ] [La civiltà dei dati. Rivista](https://dicorinto.it/articoli/la-civilta-dei-dati-rivista/)
- IT Service Management News
  - [ ] [Guida EDPS per la gestione del rischio per i sistemi IA](http://blog.cesaregallotti.it/2026/01/guida-edps-per-la-gestione-del-rischio.html)
  - [ ] [Ministero del lavoro: Linee guida per l'implementazione dell'IA](http://blog.cesaregallotti.it/2026/01/ministero-del-lavoro-linee-guida-per.html)
- 360数字安全
  - [ ] [360预警：僵尸网络传播+自适应加密“二合一”，Lockbit家族新变种威胁升级](https://mp.weixin.qq.com/s?__biz=MzA4MTg0MDQ4Nw==&mid=2247584507&idx=1&sn=900d5b69922bbd0506044b49010f6f53)
  - [ ] [激活新质生产力，360AI知识库斩获2025科技企业先锋榜“年度新锐产品”](https://mp.weixin.qq.com/s?__biz=MzA4MTg0MDQ4Nw==&mid=2247584507&idx=2&sn=a395ac980a92caccd950d705f24f32ce)
- 迪哥讲事
  - [ ] [利用github来薅钱](https://mp.weixin.qq.com/s?__biz=MzIzMTIzNTM0MA==&mid=2247498913&idx=1&sn=bddd1efbf59db02602f53e33fc091f22)
- 安全行者老霍
  - [ ] [2026年十佳AI红队工具](https://mp.weixin.qq.com/s?__biz=Mzg3NjU4MDI4NQ==&mid=2247485808&idx=1&sn=02ec6105721e657741943b41bf5b8734)
- Securityinfo.it
  - [ ] [Black Axe, arrestati oltre trenta individui legati alla cybergang](https://www.securityinfo.it/2026/01/12/black-axe-arrestati-oltre-trenta-individui-legati-alla-cybergang/?utm_source=rss&utm_medium=rss&utm_campaign=black-axe-arrestati-oltre-trenta-individui-legati-alla-cybergang)
  - [ ] [CERT-AGID 3-9 gennaio: phishing e malware aprono il 2026](https://www.securityinfo.it/2026/01/12/cert-agid-3-9-gennaio-phishing-e-malware-aprono-il-2026/?utm_source=rss&utm_medium=rss&utm_campaign=cert-agid-3-9-gennaio-phishing-e-malware-aprono-il-2026)
- Krypt3ia
  - [ ] [A Physical Security Primer For Lawful, Peaceful Protesting In The United States Today](https://krypt3ia.wordpress.com/2026/01/12/a-physical-security-primer-for-lawful-peaceful-protesting-in-the-united-states-today/)
- ICT Security Magazine
  - [ ] [La cybersecurity per le PMI italiane: una sfida di risorse e priorità](https://www.ictsecuritymagazine.com/articoli/cybersecurity-per-le-pmi/)
- SEI Blog
  - [ ] [The Top 10 Blog Posts of 2025](https://www.sei.cmu.edu/blog/the-top-10-blog-posts-of-2025/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updates)
- CNVD漏洞平台
  - [ ] [CNVD漏洞周报2026年第1期](https://mp.weixin.qq.com/s?__biz=MzU3ODM2NTg2Mg==&mid=2247496634&idx=1&sn=8686d9754dfcde9f260aaf03b297f079)
  - [ ] [上周关注度较高的产品安全漏洞(20260105-20260111)](https://mp.weixin.qq.com/s?__biz=MzU3ODM2NTg2Mg==&mid=2247496634&idx=2&sn=32b5950802c2c35531024c09ef3c4e9d)
- Schneier on Security
  - [ ] [Corrupting LLMs Through Weird Generalizations](https://www.schneier.com/blog/archives/2026/01/corrupting-llms-through-weird-generalizations.html)
- SANS Internet Storm Center, InfoCON: green
  - [ ] [ISC Stormcast For Monday, January 12th, 2026 https://isc.sans.edu/podcastdetail/9762, (Mon, Jan 12th)](https://isc.sans.edu/diary/rss/32620)
- NetSPI
  - [ ] [Tackling Technical Debt before It Owns Your Roadmap](https://www.netspi.com/blog/executive-blog/ciso-perspectives/tackling-technical-debt-before-it-owns-your-roadmap/)
- Dark Space Blogspot
  - [ ] ["Una Possibilità Per Olivia": Si Tratta Di Una Truffa?](http://darkwhite666.blogspot.com/2026/01/una-possibilita-per-olivia-si-tratta-di.html)
- Security Affairs
  - [ ] [U.S. CISA adds a flaw in Gogs to its Known Exploited Vulnerabilities catalog](https://securityaffairs.com/186837/hacking/u-s-cisa-adds-a-flaw-in-gogs-to-its-known-exploited-vulnerabilities-catalog.html)
  - [ ] [Meta fixes Instagram password reset flaw, denies data breach](https://securityaffairs.com/186829/security/meta-fixes-instagram-password-reset-flaw-denies-data-breach.html)
  - [ ] [Europol and Spanish Police arrest 34 in crackdown on Black Axe criminal network](https://securityaffairs.com/186819/security/europol-and-spanish-police-arrest-34-in-crackdown-on-black-axe-criminal-network.html)
  - [ ] [Credential-harvesting attacks by APT28 hit Turkish, European, and Central Asian organizations](https://securityaffairs.com/186801/apt/credential-harvesting-attacks-by-apt28-hit-turkish-european-and-central-asian-organizations.html)
- TorrentFreak
  - [ ] [Disney, Netflix & Crunchyroll Try to Take Pirate Sites Down Globally Through Indian Court](https://torrentfreak.com/disney-netflix-crunchyroll-try-to-take-pirate-sites-down-globally-through-indian-court/)
- The Hacker News
  - [ ] [n8n Supply Chain Attack Abuses Community Nodes to Steal OAuth Tokens](https://thehackernews.com/2026/01/n8n-supply-chain-attack-abuses.html)
  - [ ] [⚡ Weekly Recap: AI Automation Exploits, Telecom Espionage, Prompt Poaching & More](https://thehackernews.com/2026/01/weekly-recap-ai-automation-exploits.html)
  - [ ] [GoBruteforcer Botnet Targets Crypto Project Databases by Exploiting Weak Credentials](https://thehackernews.com/2026/01/gobruteforcer-botnet-targets-crypto.html)
  - [ ] [Anthropic Launches Claude AI for Healthcare with Secure Health Record Access](https://thehackernews.com/2026/01/anthropic-launches-claude-ai-for.html)
  - [ ] [Researchers Uncover Service Providers Fueling Industrial-Scale Pig Butchering Fraud](https://thehackernews.com/2026/01/researchers-uncover-service-providers.html)
- Trend Micro Research, News and Perspectives
  - [ ] [Analyzing a Multi-Stage AsyncRAT Campaign via Managed Detection and Response](https://www.trendmicro.com/en_us/research/26/a/analyzing-a-a-multi-stage-asyncrat-campaign-via-mdr.html)
- The Register - Security
  - [ ] [No fire sale for firewalls as memory shortages could push prices higher](https://go.theregister.com/feed/www.theregister.com/2026/01/12/no_fire_sale_on_firewalls/)
  - [ ] ['Violence-as-a-service' suspect arrested in Iraq, extradition underway](https://go.theregister.com/feed/www.theregister.com/2026/01/12/violence_as_a_service_arrest/)
  - [ ] [Businesses in 2026: Maybe we should finally look into that AI security stuff](https://go.theregister.com/feed/www.theregister.com/2026/01/12/ai_security_wef_survey/)
  - [ ] [Block CISO: We red-teamed our own AI agent to run an infostealer on an employee laptop](https://go.theregister.com/feed/www.theregister.com/2026/01/12/block_ai_agent_goose/)
  - [ ] [Infamous BreachForums forum breached, spilling data on 325K users](https://go.theregister.com/feed/www.theregister.com/2026/01/12/breachforums_breach/)
  - [ ] [Ofcom officially investigating X as Grok's nudify button stays switched on](https://go.theregister.com/feed/www.theregister.com/2026/01/12/xai_grok_uk_regulation/)
  - [ ] [Tories vow to boot under-16s off social media and ban phones in schools](https://go.theregister.com/feed/www.theregister.com/2026/01/12/conservatives_social_media_ban/)
  - [ ] [India’s government denies it plans to demand smartphone source code](https://go.theregister.com/feed/www.theregister.com/2026/01/12/india_mobile_security/)
  - [ ] [Malaysia and Indonesia block X over failure to curb deepfake smut](https://go.theregister.com/feed/www.theregister.com/2026/01/12/asia_tech_news_roundup/)
- Instapaper: Unread
  - [ ] [The Shift from Disk Imaging to Digital Triage](https://blog.elcomsoft.com/2026/01/the-shift-from-disk-imaging-to-digital-triage/)
  - [ ] [Contrasto al cyber crime, l’impegno della Polizia Postale nel 2025. Il report](https://www.cybersecitalia.it/contrasto-al-cyber-crime-e-cyberterrorismo-limpegno-della-polizia-postale-nel-2025-il-report/57814/)
  - [ ] [Language models cannot reliably distinguish belief from knowledge and fact | Nature Machine Intelligence](https://blog.quintarelli.it/2026/01/language-models-cannot-reliably-distinguish-belief-from-knowledge-and-fact-nature-machine-intelligence/)
  - [ ] [Instagram denies breach amid claims of 17 million account data leak](https://www.bleepingcomputer.com/news/security/instagram-denies-breach-amid-claims-of-17-million-account-data-leak/)
  - [ ] [A massive breach exposed data of 17.5M Instagram users](https://securityaffairs.com/186765/data-breach/a-massive-breach-exposed-data-of-17-5m-instagram-users.html)
  - [ ] [Con la multa a Cloudflare Piracy Shield dimostra ciò che sappiamo da tempo. Che non funziona](https://www.wired.it/article/cloudflare-piracy-shield-prince-multa-servizi-dsa/)
- Security Weekly Podcast Network (Audio)
  - [ ] [The State of Cybersecurity Hiring, 2026 content plans, and the weekly news - ESW #441](http://sites.libsyn.com/18678/the-state-of-cybersecurity-hiring-2026-content-plans-and-the-weekly-news-esw-441)


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[每日信息流] 2026-01-13 #1113

每日安全资讯（2026-01-13）

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[每日信息流] 2026-01-13 #1113

Description

每日安全资讯（2026-01-13）

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions